Category: Cyber Security Main location: United States Position ID: J0626-1135 Employment Type: Full Time
CGI is seeking a Risk Analyst to support the documentation, assessment, and testing of infrastructure and cloud technology controls within a financial services environment. This role will help create standardized control test plans, document design assessments, define evidence requirements, and support control testing across AWS-heavy cloud environments, with additional exposure to Azure and GCP. We partner with 15 of the top 20 banks globally, and our top 10 banking clients have worked with us for an average of 26 years!. This role is located at a client site in Birmingham, AL, TX, Lafayette, LA, Knoxville, TN or Columbia, SC. A hybrid working model is acceptable.
CGI is seeking a Risk Analyst to support the documentation, assessment, and testing of infrastructure and cloud technology controls within a financial services environment. This role will help create standardized control test plans, document design assessments, define evidence requirements, and support control testing across AWS-heavy cloud environments, with additional exposure to Azure and GCP. The analyst will work closely with control owners to conduct walkthroughs, gather evidence, map controls to industry frameworks, and identify opportunities to improve testing, documentation, reporting, and dashboarding. The role also includes supporting automation and AI-enabled solutions for control documentation, test case generation, evidence review, and reporting activities.
5+ years of experience in risk management, internal controls, internal audit, compliance, technology risk, or controls testing. Strong background in technology risk, internal controls, internal audit, compliance, or controls testing Hands-on experience documenting and testing technology or infrastructure controls Working knowledge of cloud environments, especially AWS, with exposure to Azure and/or GCP Ability to develop clear, repeatable control test plans, including design assessments, test cases, execution steps, and evidence requirements Familiarity with common control and risk frameworks such as COSO, NIST, COBIT, ISO 27001, FFIEC, and SOX Strong technical writing skills with the ability to translate control concepts into practical testing procedures Experience conducting walkthroughs with control owners and gathering control evidence Comfortable working in a financial services or other highly regulated environment Proficiency with Microsoft Excel and reporting or dashboarding tools such as Power BI or Tableau Ability to identify opportunities to streamline, automate, or improve control documentation and testing processes Familiarity with GRC platforms such as Archer or ServiceNow GRC is preferred Exposure to Generative AI, automation tools, or AI-assisted documentation/testing is a plus Strong critical thinking, attention to detail, and problem-solving skills Desired Skillset: CISA CRISC AWS Cloud Practitioner Azure Fundamentals CCSK Education: Bachelor's degree in Information Technology, Cybersecurity, Risk Management, Accounting, Business, or a related field
Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our teamone of the largest IT and business consulting services firms in the world.